Package: ssh Version: 1:3.8p1-3 Severity: important When ssh creates a tty with a number greater than 999, it does not remove it correctly from utmp. The problem is that ssh uses at one place a 8-chars buffer while everywhere else it uses larger buffers: since "pts/1234\0" is more than 8 chars long, it is truncated. The problem shows probably on *very* loaded login servers, but it shows also on 2.6.4+ kernels, where the tty numbers are never reused. If the line char line; in loginrec.c:1357 becomes char line[UT_LINESIZE]; that fixes the problem.
Description: PGP signature